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c. 
d. 
e. 

f. 

g- 



recelving a respons \from the user based upon said challenge; 
procsssing said response to verify the user; 
assembling credentials for the transaction, said credentials 
comprising at least one key; 



providing at least 
receiving a seco 



a portion of said credentials to said user, 
d request from said user, said second request 
including said pqhion of said credentials; and 
validating said portion of said credentials with said key to provide 
access to a transaction sen/ice. 



(New) The method or Claim 43, wherein the transaction is an electronic 
purchase transaction. 



45. (New) The method bf Claim 44, wherein the electronic purchase 
transaction is conducted using a digital wallet. 

46. (New) The method of Claim 43, wherein the instrument is a smartcard. 
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47. (New) A computer-implemented method for protecting a network server 
from being used as the basis of an attack on ^network client, the method 
comprising: 

a. receiving a request for a cprtoe*?uPn at said server from said 
network client; and 

b. scanning a portion of sar6 netwbrk server for particular characters 
associated with a protocol; 

c. verifying that an/response from said network server to said 
network clientis void of said particular characters; and 

d. providlng^id response from said network server to said network 
client.. 
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48. (New) The method of Claim 47 further comprising restricting access to 

said network server for said protocol to said portion of said network server. 



49. (New) The method of Claim 47 further comprising replacing said 
particular characters with benign characters such that a security risk 
posed by said selected protocol is reducec . 

50. (New) The method of Claim 47 wherein s^id protocol comprises 
javascript. 

51 . (New) The method of Claim 47 furthe^ comprising logging said particular 
characters to form a security log. 

52. (New) The method of Claim 51 further comprising reviewing said security 
log to determine whether said particular characters are hostile. 

53. (New) The method of Claim 47 wherein said protection of the network 
server is accomplished during/an electronic purchase transaction. 

54. (New) The method of Claim 53 wherein the electronic purchase 
transaction is conducted uYing a digital wallet. 
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55. (New) A transaction system for facilitating a financial transaction 

requested by a user opeVatihg a user computer on a data network, the 
system comprising: 

a. a transaction ajtohorizer; and 

b. a security server configured to verify that an intelligent token is in 
the user's possession and to provide a digltial credential to said 
user computer if said verification is successful; 

wherein sa/d transaction authorizer is configured to authorize a 
transaction requested by said user based at least in part upon said 
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digital credential provided by said user computer via rtid data 

network. / 

56. (New) The transaction system of Claim 55, further cor^rising a 

^ ~ A *i^ri eorvpr / 



57. 



58. 



59. 



60. 



61. 



62. 



transaction tool server. 

(New) The transaction system of Clam 55 furthe/c°m P risin 9 pallet 
server in communication with said user computer ™ said digital network. 

(N ew) The transaction system of Claim 57 ieraln said wallet server Is 
configured to receive a request for a trans/*n from said user computer 
to contact a merchant computer system Jnd to provide Information about 
said user to said merchant computer system. 

(New) The transaction system of Claim 55, wherein the user computer 
comprises a transaction tool and /reader, wherein said reader ,s 
configured to transfer Wormatio/ between the transaction tool and the 
intelligent token. 

^- bw*^ nf riaim 59 wherein said transaction tool 
(New) The transaction ^jff^ of c,a,m °*' wnere " 

is a wallet client. 

(New) The transacao/sy^tem of Claim 55, wherein the intelligent token is 

a smartcard. 

(New) The transition system of Claim 55. wherein the connection 
between said security server and said transaction authors computer „ 
through a dat/connedion separate from said data network. 
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63. (New) The transaction system of Claim 59, wherein said transaction tool 
communicates with said security server via a data connection separate 
from said data network. / 

64. (New) The transaction system of Claim 55, wherein the intelligent token 
comprises a digital certificate that uniquely identifies the/iser associated 
with the intelligent token. / 

65. (New) The transaction system of Claim 64, wherein the user of said 
intelligent token unlocks access to the digital certificate by use of a 
personal identifier. / 

66. (New) The transaction system of Claim 55yWherein the intelligent token is 
issued by an issuer and wherein a transaction made using said 
transaction system is considered a "card^resenf transaction as deemed 
by the issuer of the intelligent token. / 

67. (New) A digital wallet client for facilitating electronic transactions via a 
digital network in conjunction with4 browser program, the digital wallet 
client comprising: \\A\ 

a. a wallet application cwmgujed to initiate a session with a wallet 
server via said digrtaWnetwork in response to inputs from a user; 

and / 1 

b. an interface to a reader device, wherein said reader device is 
configured to accept a token to verify the identity of said user; and 
wherein said wallet application is operable to authenticate said user 
to said wallet/server using said token and to contact said wallet 
server via sfiid digital network to consummate said electronic 
transactions. 
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68. 



69. 



(New) The digital wallet of claim 67 further comprising an aetjvatoT for 
accessing said wallet server, wherein said activator exchanges 
information with said wallet server to complete said electronic 
transactions. 

(New) The digital wallet client of claim 67 wherein sai</ wallet application 
is further configured to authenticate said user to said/wallet server based 
at least in part upon a credential received at said digital wallet client from a 
security server on said digital network. 



70. 



(New) The digital wallet client of claim 68 wherein said activator 
comprises a status indicator displayed to salid user, said status indicator 
corresponding to the availability of wallekservlces for a web page. 



71. (New) The digital wallet client of 
is further configured to obtain a 
provide said digital signature to 



claifh 69 wherein said wallet application 
digital signature from said token and to 
aid wallet server via said digital network. 
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72. (New) A wallet server for facilitating a transaction via a digital network, the 
wallet server comprisir 

a. an interface to a\agitel network; and 

b. a wallet server /ppilipation in communication with a database; 
wherein saidwallef(server is configured to receive a request for a 
transaction/from a wailet client, to process a credential received 
from said/wallet client to authenticate a user of said wallet client, to 
retrieve/user information from said database after authenticating 
said user, and to complete said transaction on behalf of said user 
usinlg said user information. 



73. (New) /The wallet server of claim 72 wherein said credential comprises a 
digital signature. 
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74. (New) The wallet server of claim 73 wherein said credential comprises a 
random digest digitally signed by a token in the possession of said user. 

75. (New) The wallet server of claim 74 wherein said digest is provided to 
said wallet client by a security server. 

ft ^ 76. (New) The wallet server of claim 72 wherein completing/said transaction 

on behalf of said user comprises completing a merchant form with said 
user information. 
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(New) A computer-implemented method for facilitating an online purchase 



1 77. 

2 comprising the steps of: 

3 authenticating with a security server; 

4 receiving a credential from said security/server; 

5 identifying a merchant address from which to make said purchase; 

6 providing said credential to a wallet/erver to authenticate said user to 

7 said wallet server, 

8 upon successful authenticatiorywith said wallet server, re-directing 

cornmunicatiorV with said merchant address to said wallet server 
such that said waWierver provides purchase information about 
said user to siiowierchant address; and 

receiving a ccnfirmatSpfl oflhe results of said purchase. 



78. (New) The method of claim 77 wherein said credential comprises a digital 
signature. 

79. (New) The/rnethod of claim 79 wherein said credential comprises data 
received from a security server. 
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80. (New) A computer-implemented method for facilitating an online purchase 
comprising the steps of: 

receiving a request for a transaction from a user at a server, said request 

comprising a merchant address and a credential; 
verifying said credential to authenticate said user; 
retrieving user information from a database in response t/said verifying 

7 step; 

8 completing an online form corresponding to said merchant address; and 

9 providing a purchase result to said user. 

^ 81 . (New) The method of claim 80 wherein said cr/dential comprises a digital 

signature. 

82. (New) The method of claim 81 wherein s^id credential comprises data 
received from a security server. 

83. (New) Tha method of claim 82 whetein said security server is affiliated 
with said server. 

84. (New) The method of any o^im^l wherein said digital signature Is 
produced by a smartcard. 

1 85. (New) A computeRmdfementW method for facilitating access to a 

2 service, the method comprising the steps of: 

3 receiving a logon request from a user; 

4 verifying that said/user is in possession of a token; 

5 providing a credential to said user If said verification Is successful; 

6 receiving a transaction request from a user, said transaction request 

7 comprising at least a part of said credential; and 

8 processin/ said at least a part of said credential to provide access to said 

9 service. 
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86. (New) The method of claim 85 wherein said verifjc^fTstep comprises a 
challenge-response. 

87. (New) The method of claim 86^ein said challenge-response 
comprises random data prided to said token. 



88. (New) The rjv 
comprisesra 



rod ofyclaim 87 wherein said challenge-response further 
^igital^gnature of said random data. 

89. XNew) The method of any of claim 85 wherein said service is a financial 
transaction. 
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